Traffic Trace Info
DumpFile: 201301121400.dump
FileSize: 1902.18MB
Id: 201301121400
StartTime: Sat Jan 12 14:00:00 2013
EndTime: Sat Jan 12 14:15:01 2013
TotalTime: 900.35 seconds
TotalCapSize: 1493.95MB CapLen: 96 bytes
# of packets: 26753100 (21468.34MB)
AvgRate: 200.02Mbps stddev:58.94M
IP flow (unique src/dst pair) Information
# of flows: 1664290 (avg. 16.07 pkts/flow)
Top 10 big flow size (bytes/total in %):
13.4% 2.7% 2.4% 2.1% 1.9% 1.6% 1.5% 1.5% 1.3% 1.2%
IP address Information
# of IPv4 addresses: 1308713
Top 10 bandwidth usage (bytes/total in %):
19.9% 14.5% 5.0% 4.8% 3.5% 3.4% 3.0% 3.0% 3.0% 2.9%
# of IPv6 addresses: 9740
Top 10 bandwidth usage (bytes/total in %):
9.1% 7.3% 6.4% 6.4% 5.0% 4.2% 4.2% 3.9% 3.8% 3.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201301121400.pktlen.png)
detailed numbers
[ 32- 63]: 4681265
[ 64- 127]: 5737856
[ 128- 255]: 561156
[ 256- 511]: 574008
[ 512- 1023]: 845607
[ 1024- 2047]: 14353208
Protocol Breakdown
![[protocol breakdown chart]](201301121400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 26753100 (100.00%) 22511181808 (100.00%) 841.44
ip 25110535 ( 93.86%) 21089380905 ( 93.68%) 839.86
tcp 19980535 ( 74.68%) 19251720138 ( 85.52%) 963.52
http(s) 10842501 ( 40.53%) 14056609672 ( 62.44%) 1296.44
http(c) 4929775 ( 18.43%) 1336495918 ( 5.94%) 271.11
squid 125193 ( 0.47%) 120956545 ( 0.54%) 966.16
smtp 81136 ( 0.30%) 48258936 ( 0.21%) 594.79
nntp 109 ( 0.00%) 6540 ( 0.00%) 60.00
ftp 70271 ( 0.26%) 58762586 ( 0.26%) 836.23
pop3 2566 ( 0.01%) 888576 ( 0.00%) 346.29
imap 77014 ( 0.29%) 76396979 ( 0.34%) 991.99
telnet 3958 ( 0.01%) 1780863 ( 0.01%) 449.94
ssh 29134 ( 0.11%) 5760087 ( 0.03%) 197.71
dns 1211 ( 0.00%) 229719 ( 0.00%) 189.69
bgp 483 ( 0.00%) 88370 ( 0.00%) 182.96
napster 45 ( 0.00%) 4229 ( 0.00%) 93.98
realaud 10 ( 0.00%) 1316 ( 0.00%) 131.60
icecast 23506 ( 0.09%) 12152744 ( 0.05%) 517.01
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 3793618 ( 14.18%) 3533326752 ( 15.70%) 931.39
udp 2736968 ( 10.23%) 1264508092 ( 5.62%) 462.01
dns 1525257 ( 5.70%) 663998200 ( 2.95%) 435.34
realaud 15 ( 0.00%) 1165 ( 0.00%) 77.67
halflif 14 ( 0.00%) 1085 ( 0.00%) 77.50
starcra 36 ( 0.00%) 3453 ( 0.00%) 95.92
everque 93 ( 0.00%) 9901 ( 0.00%) 106.46
unreal 38 ( 0.00%) 3292 ( 0.00%) 86.63
quake 74 ( 0.00%) 5675 ( 0.00%) 76.69
cuseeme 16 ( 0.00%) 1149 ( 0.00%) 71.81
other 1211111 ( 4.53%) 600124509 ( 2.67%) 495.52
icmp 1773130 ( 6.63%) 175911610 ( 0.78%) 99.21
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 17314 ( 0.06%) 6607116 ( 0.03%) 381.61
ip6 552943 ( 2.07%) 376169543 ( 1.67%) 680.30
other 49460 ( 0.18%) 14445136 ( 0.06%) 292.06
frag 449108 ( 1.68%) 497486205 ( 2.21%) 1107.72
ip6 1642565 ( 6.14%) 1421800903 ( 6.32%) 865.60
tcp6 1007723 ( 3.77%) 822764143 ( 3.65%) 816.46
http(s) 665679 ( 2.49%) 659528209 ( 2.93%) 990.76
http(c) 146101 ( 0.55%) 19283994 ( 0.09%) 131.99
smtp 164 ( 0.00%) 68799 ( 0.00%) 419.51
ftp 69 ( 0.00%) 6134 ( 0.00%) 88.90
ssh 12 ( 0.00%) 1008 ( 0.00%) 84.00
dns 283 ( 0.00%) 61364 ( 0.00%) 216.83
bgp 99 ( 0.00%) 25997 ( 0.00%) 262.60
other 195316 ( 0.73%) 143788638 ( 0.64%) 736.18
udp6 208276 ( 0.78%) 117502257 ( 0.52%) 564.17
dns 46148 ( 0.17%) 15142258 ( 0.07%) 328.12
starcra 6862 ( 0.03%) 5868336 ( 0.03%) 855.19
everque 1 ( 0.00%) 115 ( 0.00%) 115.00
other 155265 ( 0.58%) 96491548 ( 0.43%) 621.46
icmp6 29208 ( 0.11%) 2980101 ( 0.01%) 102.03
ip6 84 ( 0.00%) 11412 ( 0.00%) 135.86
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 397244 ( 1.48%) 478538910 ( 2.13%) 1204.65
tcpdump file: 201301121400.dump.gz (582.41 MB)